January 22, 2024 at 11:02AM
Mortgage lender loanDepot confirmed a ransomware attack resulting in the theft of personal information from approximately 16.6 million people. The incident led to system shutdowns, impacting payments and online portals. The company is offering free credit monitoring and identity protection services to affected individuals. The attack highlights the risks of data breaches and underscores the need for heightened security measures.
From the meeting notes, it is evident that loanDepot, a major U.S. nonbank mortgage lender, suffered a significant ransomware attack that resulted in approximately 16.6 million individuals having their personal information stolen. The attack also led to the encryption of files on compromised devices and the disruption of various online portals such as MyloanDepot, HELOC, and the mellohome website. Despite the company’s progress in restoring loan origination and servicing systems, it is crucial for affected individuals to be aware of potential phishing attacks and identity theft attempts, given the sensitivity of the financial and bank account information stored by loanDepot. The company has committed to notifying impacted individuals and providing free credit monitoring and identity protection services. It is important to note that this is not the first data breach experienced by loanDepot, as they disclosed another breach in May 2023 resulting from an August 2022 cyberattack.